Archive | March 2015

Android Locker Trojan in the wild

Android package file
The Trojan may arrive as a package with the following characteristics:

Package name: Nero.lockphone
Version number: 1.0

Permissions
When the Trojan is being installed, it requests permissions to perform the following actions:

  • Access information about the Wi-Fi state.
  • Change Wi-Fi state
  • Start once the device has finished booting
  • End background processes
  • Access list of current or recently running tasks
  • Prevent processor from sleeping or screen from dimming
  • Send SMS messages

Installation
Once installed, the application will display an icon with a picture of a red-haired boy on a bicycle.

Functionality
When the Trojan is executed, it creates a service with the following name:

  • killserve

Next, the Trojan locks the screen to block the user from accessing the compromised device.

Microsoft Surface 3 firmware update released

Surface_FirmYesterday Microsoft released a second Surface Pro 3 update for the month of March. You will probably find the update ready to install but if not you can manually check for the update by following the instructions below. This business focused firmware update adds support for enterprise disk encryption, enhances the advanced configuration settings for device security, and adds configurable support from the Windows OS for provisioning scenarios.

Step 1: Swipe in from the right edge of the screen, and tap Settings.
(If you’re using a mouse, point to upper-right corner of screen, move the mouse pointer down, and click Settings.)
Step 2: Tap or click Change PC settings, and tap or click Update and recovery.
Step 3: Tap or click Check now.
Step 4: If there are updates available, tap or click View details.
Step 5: Tap or click to select the updates you want to install, and tap or click Install.
You will need to restart Surface after the updates have been installed.

Flash Player zero-day exploit infected nydailynews.com

Visitors to the New York Daily News website or Metacafe website recently could have been infected with malware, according to Malwarebytes.

The malware was being delivered via advertising redirected users to the Hanjuan Exploit Kit. Researchers only observed the exploit taking advantage of a recently patched Adobe Flash Player zero-day vulnerability – CVE-2015-0313.

The threat is a an auto download attack that requires no user interaction, meaning no clicking is required to become infected

This a stealth infection on a very public site that users expect to be “safe”. This is an example of why workstations need to be running up to date virus programs and have the latest security updates installed.

Apple updates its Safari browser: addresses 17 security vulnerabilities

Safari updates 8.04, 7.14 and 6.24 patch multiple memory corruption issues in WebKit, another vulnerability affects the user interface and could open the door to phishing attacks.

Source: Apple

Outlook Mobile update released: People / Contacts integration

Outlook UpdateOutlook Mobile (Formerly Acompli) is in use at most of our clients as their mail client to access on premises Exchange servers as well as Office 365. While the program has remained mostly unchanged from Acompli since the purchase by Microsoft today’s update is a major shift. Previously your full contact information was not available from within Outlook. When using People it would only provide you with a contacts email address. Now you have full access to all of the information in your Exchange contacts including notes.

This update will enable users to stop using the Android contacts application and brings the Outlook mobile client very close to being as full featured as a desktop mail client.

OneDrive for Android updated

OneDrive Android

The OneDrive client for Android includes the ability to access both your personal and business OneDrive (Most commonly Office 365 Users) however you have not been able to share information from the Android client . With this update you can now share files as you would from the web client.

OneNote for iPhone and Mac updated

Microsoft has delivered an updater to OneNote on both iPhone and Mac. OneNote for iPhone includes note previews and notebooks reordering. OneNote for Mac provides enhanced notebook sharing functionality.

iphone-note-previewOneNote for iPhone

On iPhone, the note list in each section now displays a note preview so you can visually identify the note you’re looking for more quickly.

In addition to note previews another enhancement to notebook organization. If you have several notebooks on your iPhone and want to list them in a different order, you can now drag and drop to easily re-order your notebooks.

OneNote for Mac–notebook sharing enhancements

With this update it is even easier to share notebooks by providing you a way to invite your contacts to collaborate on notebooks, selecting whether they can view only or edit the notebooks and remove sharing access when needed. These improvements work with notebooks you created on OneDrive and OneDrive for Business.

Additionally, OneNote for iPhone, iPad and Mac all received bug fix updates this week as well.